Adobe Security Updates for Febraury 2017

Adobe has released three security updates for Adobe Flash Player (APSB17-04), Adobe Digital Editions (APSB17-05), and Adobe Campaign (APSB17-06) which covers a total of 24 CVEs. These updates for Adobe Flash Player address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. For Digital Editions it resolves a critical heap buffer overflow vulnerability that could lead to code execution and important buffer overflow vulnerabilities that could lead to a memory leak. The security updates resolve a moderate security bypass affecting the Adobe Campaign client console.

APSB17-06 (Adobe Campaign):
– A moderate security bypass affecting Adobe Campaign that could be exploited by an authenticated user with access to the client console. Successful exploitation could lead to read and write access to the system (CVE-2017-2968).
– A moderate input validation issue that could be used in cross-site scripting attacks (CVE-2017-2969).